Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/oZnqTTDFwuQXAMOT0ZHfhgPUrDA.roa
File: oZnqTTDFwuQXAMOT0ZHfhgPUrDA.roa (raw, json)
Hash identifier: gfmQ4LSNGPK7FQrGUzHkUOTH76Bsb9ELU7TVjhlhmmQ=
Subject key identifier: A1:99:EA:4D:30:C5:C2:E4:17:00:C3:93:D1:91:DF:86:03:D4:AC:30
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018D01DDAA57B43F0ACF897ACAF1993E5132
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/oZnqTTDFwuQXAMOT0ZHfhgPUrDA.roa
Signing time: Sat 13 Jan 2024 08:08:40 +0000
ROA not before: Sat 13 Jan 2024 08:08:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 176.126.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 10:32:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:01:dd:aa:57:b4:3f:0a:cf:89:7a:ca:f1:99:3e:51:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 13 08:08:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a199ea4d30c5c2e41700c393d191df8603d4ac30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9f:8d:05:6f:ba:34:a0:dd:3c:de:ee:2a:fc:
ba:63:76:b1:d3:0b:58:32:4d:ba:e4:46:bc:e1:8b:
d3:60:3b:84:5e:76:8e:ba:9e:ba:dd:16:8c:04:c4:
7e:dc:97:10:9d:b3:d3:e0:d9:fb:67:ef:05:25:fc:
0c:51:da:f6:b7:84:45:e5:00:22:c5:73:ec:ba:65:
ac:78:cb:c4:dd:fb:41:96:ee:09:9d:6c:f5:8f:64:
8b:7b:e4:6a:f2:c0:29:36:03:10:2a:99:d5:61:06:
dc:4a:b4:68:9e:9e:66:2c:56:8b:f0:f0:7e:33:a9:
77:1c:55:2b:23:b7:bc:ec:b9:73:bc:fc:c7:03:5b:
dd:a9:d3:fc:e7:05:e0:cc:e5:33:8f:b8:54:99:45:
74:ef:be:aa:94:69:dc:a9:09:02:fc:d1:20:0f:a7:
f6:d9:9e:da:7b:72:3b:79:ed:12:5c:19:38:18:9a:
97:b7:43:28:71:cc:d2:93:74:0b:0a:55:9d:7e:04:
0f:d6:76:bf:26:96:31:bf:b5:27:84:4f:d1:bd:82:
3b:87:66:36:d9:f0:8e:24:1a:86:5d:59:58:d0:7e:
f6:c7:19:60:77:6b:70:b9:e5:37:6e:ed:17:7d:88:
ab:ff:11:f7:2d:ba:0e:15:9c:89:de:b6:ad:f4:a8:
8d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:99:EA:4D:30:C5:C2:E4:17:00:C3:93:D1:91:DF:86:03:D4:AC:30
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/oZnqTTDFwuQXAMOT0ZHfhgPUrDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.106.0/24
Signature Algorithm: sha256WithRSAEncryption
04:15:fc:49:51:1a:29:35:4a:a4:62:2d:56:39:33:66:b7:f1:
e9:c5:de:16:40:97:23:d4:66:a2:dc:6b:bd:94:91:7a:32:bc:
90:df:b7:b5:bb:d8:54:64:6b:ec:ea:10:36:17:ad:9e:36:ff:
93:35:28:72:c7:c2:0f:f9:b2:e8:d4:64:09:e8:b0:d7:8d:43:
1b:f4:83:34:b8:8f:95:2f:1d:2b:f2:cd:d1:c9:8c:ae:6f:4d:
0a:b2:56:70:a2:1d:96:3b:c7:30:3d:0d:32:45:20:bb:6d:46:
a1:00:b4:1d:00:64:92:5a:a2:2c:80:26:36:ec:ee:92:0b:5a:
26:67:7f:66:4b:ea:9a:ef:2c:b5:98:14:1c:0b:a5:e9:2b:d8:
15:29:d0:b8:0a:b4:55:17:0c:5d:06:c1:18:1d:8d:2e:0f:bf:
49:c9:49:21:92:1d:35:60:67:00:49:ee:7f:1f:b2:25:63:76:
04:0c:87:8e:18:6a:7f:24:ec:fd:0b:67:e3:7a:fb:a3:23:a8:
1e:ca:75:4f:11:95:91:17:d2:e3:50:c7:57:24:2e:d5:10:53:
fd:b4:dd:12:9d:09:bf:fd:f4:30:71:f2:26:f3:98:57:65:41:
50:41:8b:29:8b:92:50:1b:97:fe:8f:a0:92:81:99:23:bd:87:
5c:05:42:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org